RHSA-2026:13932

Description

Red Hat Security Advisory: kernel security update

CVSS Metrics

• v3.1•HIGH•Score: 8.1CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected Systems

• redhat•bpftool

  < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4

• redhat•bpftool-debuginfo

  < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4 | < 0:7.3.0-427.124.1.el9_4

• redhat•kernel

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-debuginfo

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-devel

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-devel-matched

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-modules

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-modules-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debug-modules-extra

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-debuginfo

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-devel

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-devel-matched

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-modules

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-modules-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-64k-modules-extra

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-abi-stablelists

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-debuginfo

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-devel

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-devel-matched

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-modules

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-modules-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-modules-extra

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debug-uki-virt

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debuginfo

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debuginfo-common-aarch64

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debuginfo-common-ppc64le

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debuginfo-common-s390x

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-debuginfo-common-x86_64

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-devel

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-devel-matched

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-doc

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-modules

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-modules-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-modules-extra

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug-debuginfo

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug-devel

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug-kvm

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug-modules

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

• redhat•kernel-rt-debug-modules-core

  < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4 | < 0:5.14.0-427.124.1.el9_4

Showing first 50 affected entries in server-rendered view.

References (43)

• https://access.redhat.com/errata/RHSA-2026:13932
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2439947
• https://bugzilla.redhat.com/show_bug.cgi?id=2444398
• https://bugzilla.redhat.com/show_bug.cgi?id=2453803
• https://bugzilla.redhat.com/show_bug.cgi?id=2460538
• https://bugzilla.redhat.com/show_bug.cgi?id=2461107
• https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_13932.json
• https://access.redhat.com/security/cve/CVE-2025-71238
• https://www.cve.org/CVERecord?id=CVE-2025-71238
• https://nvd.nist.gov/vuln/detail/CVE-2025-71238
• https://lore.kernel.org/linux-cve-announce/2026030437-CVE-2025-71238-76bc@gregkh/T
• https://access.redhat.com/security/cve/CVE-2026-23191
• https://www.cve.org/CVERecord?id=CVE-2026-23191
• https://nvd.nist.gov/vuln/detail/CVE-2026-23191
• https://lore.kernel.org/linux-cve-announce/2026021433-CVE-2026-23191-f990@gregkh/T
• https://access.redhat.com/security/cve/CVE-2026-23401
• https://www.cve.org/CVERecord?id=CVE-2026-23401
• https://nvd.nist.gov/vuln/detail/CVE-2026-23401
• https://lore.kernel.org/linux-cve-announce/2026040108-CVE-2026-23401-956d@gregkh/T
• https://access.redhat.com/security/cve/CVE-2026-31431
• https://access.redhat.com/security/vulnerabilities/RHSB-2026-02
• https://www.cve.org/CVERecord?id=CVE-2026-31431
• https://nvd.nist.gov/vuln/detail/CVE-2026-31431
• https://access.redhat.com/articles/7141989
• https://access.redhat.com/solutions/7141931
• https://access.redhat.com/solutions/7141979
• https://access.redhat.com/solutions/7141990
• https://access.redhat.com/solutions/7141996
• https://access.redhat.com/solutions/7142032
• https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/managing_monitoring_and_updating_the_kernel/configuring-kernel-command-line-parameters_managing-monitoring-and-updating-the-kernel
• https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/T
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog
• https://access.redhat.com/security/cve/CVE-2026-31532
• https://www.cve.org/CVERecord?id=CVE-2026-31532
• https://nvd.nist.gov/vuln/detail/CVE-2026-31532
• https://lore.kernel.org/linux-cve-announce/2026042349-CVE-2026-31532-a820@gregkh/T
• https://access.redhat.com/security/cve/CVE-2026-43077
• https://bugzilla.redhat.com/show_bug.cgi?id=2467022
• https://www.cve.org/CVERecord?id=CVE-2026-43077
• https://nvd.nist.gov/vuln/detail/CVE-2026-43077
• https://lore.kernel.org/linux-cve-announce/2026050612-CVE-2026-43077-d7b1@gregkh/T
• https://access.redhat.com/security/vulnerabilities/RHSB-2026-002